Lucene search
HistoryMar 21, 2013 - 5:55 p.m.
CVE-2013-1052
cve-2013-1052
pam-xdg-support
ubuntu 12.10
privilege escalation
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.
Affected configurations
Node
canonicalubuntu_linuxMatch12.10
| CPE | Name | Operator | Version |
|---|---|---|---|
| canonical:ubuntu_linux | canonical ubuntu linux | eq | 12.10 |
Related
openvas
openvas
Ubuntu Update for pam-xdg-support USN-1766-1
2013-03-19 00:00:00
Ubuntu: Security Advisory (USN-1766-1)
2013-03-19 00:00:00
nessus
nessus
Ubuntu 12.10 : pam-xdg-support vulnerability (USN-1766-1)
2013-03-19 00:00:00
prion
prion
Design/Logic Flaw
2013-03-21 17:55:00
ubuntucve
ubuntucve
CVE-2013-1052
2013-03-18 00:00:00
securityvulns
securityvulns
pam-xdg-support privilege escalation
2013-03-19 00:00:00
[USN-1766-1] pam-xdg-support vulnerability
2013-03-19 00:00:00
nvd
nvd
CVE-2013-1052
2013-03-21 17:55:03
ubuntu
ubuntu
pam-xdg-support vulnerability
2013-03-18 00:00:00
cvelist
cvelist
CVE-2013-1052
2013-03-21 17:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2013-1052